It still isn't showing up in search engines, but Microsoft has now provided guidance for securing Visual Studio Team Foundation Server using HTTPS. The official documentation can be found here : http://msdn2.microsoft.com/en-us/library/aa395265(VS.90).aspx. I will be walking through this using several deployment scenarios (exposed server, ISA, etc.) in the next few days and will post my findings.